Cyber Security Analyst

About The Position

Requirements

• Familiarity with various cyber threats and mitigating controls
• Familiarity with various endpoints security solutions, email security solutions, security monitoring tools and appliances
• Solid understanding of the OSI network model and network protocols such as TCP/IP, firewalls, proxies, IDPS concepts
• Knowledge of security-oriented regulatory requirements and compliance a plus
• Knowledge of the mortgage industry is helpful, but not required
• Ability to work effectively, independently and with others in a collaborative, deadline-sensitive environment
• Able to effectively communicate both verbally and in writing to accurately convey messages with both technical and non-technical users
• Commitment and ability to cultivate a diverse and inclusive work environment.
• Bachelor’s degree in computer science, Engineering or Information Systems Security is preferred
• Security training certifications strongly preferred (Security+, Azure Fundamentals, Network+)
• Previous experience as an IT security specialist (1-3 years)
• Experience working in IT (5+ years)
• Experience as a security specialist in a regulated IT environment including some combination of SOX, HIPAA, GLBA, PCI (1+ years)

Responsibilities

• Monitor, triage, investigate, and resolve security alerts, support tickets, and incidents, including containment, root cause analysis, chain of custody, and preventive actions
• Identify security risks, recommend remediation or mitigating controls, and support ongoing risk assessments and system testing
• Apply and enforce information security policies, standards, and procedures, aligning with industry best practices and regulatory requirements (e.g., PCI, GLBA)
• Support integration of regulatory and audit requirements into the security roadmap and ensure the Company’s computer systems meet compliance obligations
• Collaborate with IT Operations to ensure servers, network devices, and security controls meet established security standards and are working as designed
• Evaluate, implement, and perform compliance assessments on application, system, and security-related changes and solutions, adhering to established change control processes
• Perform periodic internal security audit functions on IT operational controls, to include system access, DLP controls, firewall policies, etc.
• Stay current with evolving security technologies and maintain relevant certifications
• Participate in on-call rotation
• Perform other related duties as assigned

Benefits

• Covius offers an extensive benefits package for all employees, including medical, dental, vision and 401(k)!